Software Integrity Blog

Archive for the 'Software Compliance, Quality & Standards' Category

 

Coverity release ties in well to the latest MITRE CWE Top 25

MITRE’s 2019 CWE Top 25 list contains many code quality issues that can result in security vulnerabilities. Static analysis can help you mitigate them.

Continue Reading...

Posted in Software Compliance, Quality & Standards, Static Analysis (SAST)

 

Quantifying software quality risks in tech M&A

Tech M&A typically evaluates security and legal risks, but what about software quality risks? Poor code and architecture quality can have a lasting impact.

Continue Reading...

Posted in Mergers & Acquisitions, Software Architecture & Design, Software Compliance, Quality & Standards

 

The False Claims Act: 156 years old and newly relevant to software security

We recently saw the first settlement by a company charged under the False Claims Act for failing to meet cyber security standards. Is there more to come?

Continue Reading...

Posted in Software Compliance, Quality & Standards

 

Let’s Talk Licenses: Beware the Beerware License

Many companies are relaxed about reusing software under the Beerware License and similar open source licenses. But not all such licenses are created equal.

Continue Reading...

Posted in Mergers & Acquisitions, Software Compliance, Quality & Standards

 

Awash in regulations, companies struggle with compliance

The list of regulatory compliance challenges facing companies grows longer every time a new regulation is introduced. But do security regulations even work?

Continue Reading...

Posted in Software Compliance, Quality & Standards

 

Software quality: It can be a matter of life and death

Safety-critical software powers everything from airplanes to power plants, defib machines, and seatbelts. And quality issues can lead to injury and death.

Continue Reading...

Posted in Software Compliance, Quality & Standards

 

Apollo 11 software lessons still relevant today

What did Apollo 11 teach us about software development? Coding practices have changed since 1969, but the lessons learned from the moon mission still hold.

Continue Reading...

Posted in Software Compliance, Quality & Standards

 

Ask the Experts: Should the US have a data privacy law similar to GDPR?

U.S. data privacy law is a mishmash of federal, state, and industry regulation. Should we enact a single universal federal data privacy law like GDPR?

Continue Reading...

Posted in Software Compliance, Quality & Standards

 

[Webinar] Security by Obscurity: The Flip-Side of the Compliance Coin

In our software compliance webinar, Matan Scharf (Synopsys) explains the hidden security dangers of software standardization. Available on demand.

Continue Reading...

Posted in Software Compliance, Quality & Standards, Webinars

 

[Infographic] A look back at the first year of GDPR

The first year of GDPR started slow, but companies and regulators alike are picking up speed. Our new infographic shows GDPR’s first year by the numbers.

Continue Reading...

Posted in Software Compliance, Quality & Standards

 
Be the first to know

Don’t miss the latest AppSec news and trends every Friday.

Subscribe to the blog

 

BSIMM 10